Skip to main content
The Entrepreneur Story logoThe Entrepreneur Story
STARTUP NEWS·12 min read·Jul 17, 2026

Oak Secures $60M to Solve AI Agent Identity Security A New Frontier in Cybersecurity

Oak emerges from stealth with $60 million in funding to tackle the critical challenge of securing autonomous AI agent identities, a problem traditional human-centric IAM systems cannot address.

Vibrant orange lines and dots form an abstract network on a dark background, evoking technology and connectivity.
Vibrant orange lines and dots form an abstract network on a dark background, evoking technology and connectivity. · Plate 01 · Photographed for The Entrepreneur Story

Oak Emerges from Stealth with $60M to Secure AI Agent Identity

Oak, an identity management startup, emerged from stealth mode on May 22, 2024, announcing $60 million in funding to address the complex security challenge of securing autonomous AI agent identities within enterprises. This significant capital infusion underscores the urgent need for specialized solutions as the proliferation of AI agents creates a new frontier of security vulnerabilities and compliance gaps that existing human-centric identity systems cannot manage. Founders and security leaders must recognize this emerging 'identity mess' as a critical threat surface demanding immediate attention and tailored infrastructure.

Quick takeaways:

  • Oak secured $60 million in funding upon emerging from stealth on May 22, 2024, to address AI agent identity security.
  • The funding round was led by Foundation Capital and Neotribe Ventures, with participation from notable security industry leaders.
  • Oak's platform provides cryptographically-verified identities for AI agents, establishing a zero-trust framework for authentication and authorization.
  • Co-founders Raj Mistry and Ian Campbell bring extensive enterprise security experience from their tenure at Splunk.
  • The company aims to solve the 'identity mess' created by autonomous AI agents, a problem conventional human-identity solutions cannot resolve.

The Rise of the AI Agent 'Identity Mess'

The rapid integration of autonomous AI agents into enterprise operations has introduced a fundamental security challenge: how to identify, authenticate, and authorize non-human entities interacting with sensitive data and systems. Traditional identity and access management (IAM) solutions, such as Okta, Microsoft Entra, or Auth0, are built primarily for human users, relying on credentials, multi-factor authentication, and user-centric policies. These frameworks are ill-equipped to handle the unique demands of AI agents, which operate programmatically, often without direct human oversight, across distributed environments. This discrepancy has led to what Oak describes as an 'identity mess,' a complex and growing problem where enterprises struggle to maintain visibility and control over their AI-driven operations Forbes, 2024.

The implications for founders are significant. As AI agents become more prevalent, performing tasks from data analysis to automated customer service and infrastructure management, each agent represents a potential entry point for malicious actors if its identity cannot be verified. Without a robust identity layer, organizations face heightened risks of impersonation, unauthorized data access, and system compromise. Furthermore, the lack of verifiable identity for AI agents complicates compliance with regulatory frameworks that demand auditability and accountability for all entities accessing sensitive information. This creates a new attack surface that scales with every deployed agent, demanding a foundational security layer specifically designed for machine identities.

The challenge intensifies with the increasing autonomy and complexity of AI agents. Unlike traditional software bots or scripts with fixed functions and limited access, modern AI agents can learn, adapt, and make independent decisions, interacting with multiple internal and external services. This dynamic behavior necessitates an identity system that is equally dynamic, capable of establishing trust, enforcing granular permissions, and monitoring agent activities in real-time. Enterprises are beginning to grapple with managing hundreds or even thousands of these agents, each potentially requiring unique permissions and subject to different policy constraints. The inability to establish a cryptographically-verified identity for these agents means a fundamental breakdown in the zero-trust security model that many organizations are striving to implement. Founders building AI-first companies or integrating AI agents into their products must consider this security paradigm shift from the outset, recognizing that the security of their AI systems is intrinsically linked to the verifiable identity of their agents. Ignoring this foundational layer risks not only security breaches but also significant reputational and financial damage.

Oak's $60 Million Bet on AI Identity

Oak's emergence from stealth on May 22, 2024, was accompanied by the announcement of $60 million in funding, a substantial capital injection signaling strong investor confidence in the critical need for AI agent identity solutions. The funding round was co-led by two prominent venture capital firms, Foundation Capital and Neotribe Ventures, both known for their investments in transformative technology and cybersecurity. This leadership indicates a shared belief in Oak's vision to establish a foundational security layer for the AI era TechCrunch, 2024.

Further reinforcing the strategic importance of Oak's mission, other investors in the round included Typeface Ventures and Engineering Capital. The investor roster also features a lineup of individual investors who are titans in the cybersecurity industry, lending significant credibility and domain expertise to Oak's efforts. These include George Kurtz, CEO of CrowdStrike; Nikesh Arora, CEO of Palo Alto Networks; and Kevin Mandia, founder of Mandiant Forbes, 2024. The involvement of such high-profile figures, who have built and led some of the most impactful cybersecurity companies globally, suggests a deep understanding of the market gap Oak aims to fill and the potential scale of its impact. Their backing is not merely financial but also serves as an endorsement of Oak's approach and the urgency of the problem it addresses.

As part of the funding agreement, Jamie Coffin of Foundation Capital and Kittu Kolluri of Neotribe Ventures have joined Oak's board of directors Forbes, 2024. Their presence on the board will provide strategic guidance, leveraging their extensive experience in scaling technology companies and navigating complex enterprise markets. The $60 million in funding is earmarked for accelerating product development, expanding engineering and go-to-market teams, and scaling operations to meet anticipated enterprise demand. This capital enables Oak to build out its platform, enhance its capabilities, and establish market leadership in a nascent but rapidly growing segment of the cybersecurity landscape.

For founders, this funding round highlights several critical lessons. First, investors are actively seeking solutions to the new security challenges posed by AI. Second, deep domain expertise and a clear understanding of the enterprise security landscape are highly valued. The presence of leading industry figures as investors indicates a strong validation of the problem statement and the proposed solution. Finally, the significant size of this initial funding round underscores the perceived market opportunity and the urgency with which enterprises need to secure their AI agent deployments. This suggests that the market for AI-native security solutions is maturing rapidly, creating opportunities for specialized startups to capture significant value by addressing these emergent needs.

Building Cryptographically-Verified Passports for AI

Oak's core offering is a platform designed to provide a 'cryptographically-verified identity' for AI agents. This concept is fundamental to establishing trust in an environment where autonomous entities operate independently, often without direct human supervision. The company describes this verified identity as a 'passport' for AI agents, enabling them to manage their interactions securely within enterprise systems Forbes, 2024. This is a direct response to the limitations of human-centric identity solutions, which lack the mechanisms to uniquely identify, authenticate, and authorize machine identities at scale and with the necessary cryptographic assurances.

The platform aims to implement a 'zero-trust identity platform' specifically tailored for AI agents TechCrunch, 2024. In a zero-trust model, no entity, whether human or machine, is inherently trusted. Every access request must be verified. For AI agents, this means that before an agent can access a database, invoke an API, or communicate with another agent, its identity must be cryptographically proven. This process involves issuing unique, tamper-proof identities to each AI agent, analogous to digital certificates or machine identities used in other contexts, but specifically designed for the dynamic and autonomous nature of AI. These identities serve as the foundation for enforcing granular access policies, ensuring that agents only have the minimum necessary permissions to perform their designated tasks.

The technical architecture likely involves a combination of secure key management, cryptographic signing, and distributed ledger technologies or similar immutable records to verify agent provenance and behavior. By leveraging cryptographic principles, Oak's platform ensures that an AI agent's identity cannot be easily spoofed or compromised. This 'passport' not only authenticates the agent but also provides a verifiable audit trail of its actions, crucial for compliance and incident response. For instance, if an AI agent initiates a transaction or accesses sensitive customer data, its cryptographically-verified identity ensures that the action can be attributed directly to that specific agent, eliminating ambiguity.

Implementing such a system across diverse enterprise environments presents significant technical challenges. AI agents exist in various forms, from large language models (LLMs) to specialized automation scripts, running on different infrastructures, from cloud-native environments to on-premises systems. Oak's solution must be interoperable across these varied contexts, providing a consistent identity layer regardless of the agent's underlying technology or deployment model. This involves integrating with existing enterprise security tools, orchestrating identity provisioning, and continuously monitoring agent behavior for deviations from established baselines. For founders, understanding this technical complexity highlights the depth of expertise required to build foundational security solutions in the AI space. It also underscores the importance of focusing on interoperability and scalability from day one, as enterprise adoption will hinge on seamless integration into existing security stacks and operational workflows. The promise of a trusted, auditable AI agent ecosystem depends on such robust identity infrastructure.

The Founders: From Splunk to Securing AI

Oak was co-founded by CEO Raj Mistry and CTO Ian Campbell, two individuals with a shared history and extensive experience in enterprise security. Their collaboration extends back to their time at Splunk, a company renowned for its work in security information and event management (SIEM), observability, and data analytics TechCrunch, 2024. This background at Splunk is particularly relevant to Oak's mission, as Splunk’s core business involves collecting, indexing, and analyzing machine-generated data to provide operational intelligence and security insights. Mistry and Campbell’s tenure there would have provided them with an intimate understanding of the complexities of enterprise data flows, security event correlation, and the challenges of managing diverse digital identities and machine activity at scale.

Their decision to found Oak stems from identifying a critical and emerging market gap: the inability of existing security frameworks to adequately address the identity requirements of autonomous AI agents. Having witnessed the evolution of enterprise security firsthand, they recognized that the rapid proliferation of AI agents would create an entirely new class of identity and access management problems that traditional, human-centric solutions were not designed to solve. This insight, born from years of hands-on experience in the trenches of enterprise security, positioned them to anticipate the 'identity mess' before it became a widespread crisis. The stakes involved in building a foundational security layer for AI are immense, as the trustworthiness and security of future AI deployments will hinge on the reliability of such identity systems.

For other founders, the journey of Mistry and Campbell offers several key lessons. First, it underscores the value of deep domain expertise. Their prior experience at Splunk did not just provide technical skills but also afforded them a comprehensive view of enterprise security challenges, enabling them to spot an emergent problem with profound implications. Second, it highlights the importance of timing. While the concept of machine identity is not new, the explosion of autonomous AI agents has created an urgent and specific need that makes the market ripe for a dedicated solution. Recognizing this inflection point is crucial for building a successful startup in an emerging category. Third, their collaboration demonstrates the power of co-founder synergy, where a shared history and complementary skills can accelerate the development of complex solutions.

Mistry and Campbell’s background at Splunk means they are not just technologists but also understand the operational realities and compliance pressures faced by large enterprises. This perspective is invaluable in designing a solution that is not only technically sound but also practical, scalable, and integrable into existing enterprise security ecosystems. Their expertise in managing vast amounts of machine data and understanding security events will likely inform how Oak's platform monitors and logs AI agent activities, providing the auditability and transparency necessary for a zero-trust environment. Their move from an established security giant to founding a stealth startup in a nascent field is a testament to their conviction in the problem and their vision for Oak as a critical enabler of secure AI adoption.

The Competitive Landscape and Market Implications

The emergence of Oak with $60 million in funding signals the rapid maturation of a new, specialized segment within the broader cybersecurity market: AI agent identity management. While no direct competitors providing an identical, cryptographically-verified identity platform specifically for AI agents are explicitly named in the available facts, it is crucial to understand the adjacent landscape and why existing solutions fall short. Traditional identity providers like Okta, Microsoft Entra, and Auth0 have built robust platforms for managing human identities and, to some extent, application or service accounts. However, their architectures are fundamentally geared towards human authentication flows, often relying on user credentials, multi-factor authentication, and roles defined by human users. These systems are not designed to handle the dynamic, autonomous, and potentially vast number of machine identities generated by AI agents, each requiring granular, real-time cryptographic verification and authorization [Forbes, 2024](https://www.forbes.com/sites/cathyhacker/2024/05/22/oak-emerges-from-stealth-con-60m-to-secure-ai-agent-identity/].

The broader AI security market is still nascent but rapidly expanding. Companies are emerging to address various facets of AI security, from securing AI models against adversarial attacks to ensuring data privacy in AI applications. Oak's focus on foundational identity for AI agents positions it as a critical enabler for many of these other AI security layers. Without verifiable identities for agents, other security measures become less effective, as it becomes impossible to attribute actions to a trusted source. This makes Oak a potential foundational layer upon which other AI security solutions could build.

For other founders, this market dynamic offers several key takeaways. First, the rise of AI is creating entirely new, specialized security niches that require deep expertise and targeted solutions. Simply extending existing security products to "cover AI" is proving insufficient. Second, early movers in these foundational layers, like Oak, have the opportunity to define the standards and capture significant market share. The substantial funding Oak has received suggests investors recognize this opportunity and the potential for high-value enterprise contracts. Third, the long-term vision for AI agent identity extends beyond mere security. It is about establishing trust, accountability, and auditability for all AI-driven operations. This will become increasingly important as regulatory bodies begin to impose stricter requirements on AI governance and transparency.

The market implications also point to potential M&A activity in the future. As AI adoption becomes ubiquitous, large cybersecurity vendors and cloud providers will likely seek to acquire specialized identity and security solutions for AI agents to complete their offerings. Companies that establish strong intellectual property and significant enterprise traction in this space will become attractive targets. Furthermore, the need for interoperability will drive the development of industry standards for AI agent identity, a process in which early leaders like Oak will play a significant role. The ability to seamlessly integrate with diverse AI frameworks, cloud platforms, and enterprise security tools will be crucial for widespread adoption. Oak's mission is not just to secure AI agents today but to lay the groundwork for a trusted and compliant AI ecosystem of tomorrow, a vision that has attracted significant investment and attention from industry leaders.

FAQ

Q: What problem does Oak aim to solve? A: Oak aims to solve the 'identity mess' created by the proliferation of autonomous AI agents within enterprises. Traditional identity management solutions are designed for human users and cannot adequately secure, authenticate, or authorize non-human AI entities, leading to significant security vulnerabilities and compliance challenges Forbes, 2024.

Q: Who are Oak's co-founders? A: Oak was co-founded by CEO Raj Mistry and CTO Ian Campbell. Both previously worked together at Splunk, bringing extensive enterprise security experience to their new venture Forbes, 2024.

Q: How much funding did Oak secure and who were the lead investors? A: Oak secured $60 million in funding upon emerging from stealth on May 22, 2024. The funding round was led by Foundation Capital and Neotribe Ventures TechCrunch, 2024.

Q: What is a 'cryptographically-verified identity' for AI agents? A: A cryptographically-verified identity for AI agents, as provided by Oak, acts as a 'passport' for these autonomous entities. It uses cryptographic principles to uniquely identify, authenticate, and authorize AI agents, enabling a zero-trust security framework for their interactions within enterprise systems and with data Forbes, 2024.

Q: Why are existing identity solutions insufficient for AI agents? A: Existing identity solutions, designed for human users (e.g., Okta, Microsoft Entra), rely on human-centric authentication methods and policies. They lack the specialized mechanisms needed to issue, manage, and verify the identities of autonomous AI agents programmatically and at scale, making them inadequate for securing the unique interactions and behaviors of machine identities Forbes, 2024.

operatorsfounders2026
No. The desk answers

Reader questions.

About Oak Secures $60M to Solve AI Agent Identity Security A New Frontier in Cybersecurity — five of the most-asked, in the desk's own words.

  1. 01What is Oak and its primary mission?
    Oak is an identity management startup that emerged from stealth with $60 million in funding. Its primary mission is to secure autonomous AI agent identities within enterprises, addressing the complex security challenges posed by their proliferation.
  2. 02How much funding did Oak secure and from whom?
    Oak secured $60 million in funding upon emerging from stealth. The funding round was co-led by Foundation Capital and Neotribe Ventures, with participation from other firms and notable cybersecurity industry leaders.
  3. 03What is the "AI Agent Identity Mess" that Oak aims to solve?
    The "AI Agent Identity Mess" refers to the security challenge of identifying, authenticating, and authorizing non-human AI entities. Traditional human-centric identity systems are ill-equipped for AI agents, leading to vulnerabilities and compliance gaps.
  4. 04Why are traditional IAM solutions inadequate for AI agents?
    Traditional IAM solutions like Okta or Microsoft Entra are designed for human users, relying on credentials and MFA. AI agents operate programmatically across distributed environments, requiring a more dynamic, cryptographically-verified identity system that human-centric solutions cannot provide.
  5. 05Who are the co-founders of Oak?
    Oak's co-founders are Raj Mistry and Ian Campbell. They bring extensive enterprise security experience from their previous tenure at Splunk, leveraging their expertise to tackle the emerging challenges of AI agent identity.

Continue reading

White food truck by LiveChef at a bustling street festival under sunny skies.
Capital

Wonder Secures $650M Series D, Valuation Jumps to $9 Billion

A man in a white t-shirt undergoing a 3D facial scan with red laser lines in a studio.
Startup News

Daniel Ek's Neko Health Raises €30M for US Tech Push Preventative Body Scanning

A woman engineer focuses on software analysis using a laptop indoors.
Founders & operators

Rippling Co-founder Launches Vorflux with $15M Seed Funding A Founder's Strategic Pivot